$ rpki-client -vvf rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/3C3A98A4E71C11EC9128DF0BC4F9AE02.roa File: 3C3A98A4E71C11EC9128DF0BC4F9AE02.roa (raw, json) Hash identifier: rY7SQuVKgC/AxWbpxkoT7pJkBb/Nudv0kRr7++VnHvQ= Subject key identifier: 4C:11:81:DC:0A:06:40:88:33:98:F5:18:DF:3B:8D:B9:5F:D8:12:A7 Certificate issuer: /CN=A91166D1/serialNumber=6E0A29006130339B836D28F7001802F71A5A4E42 Certificate serial: 02DA Authority key identifier: 6E:0A:29:00:61:30:33:9B:83:6D:28:F7:00:18:02:F7:1A:5A:4E:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bgopAGEwM5uDbSj3ABgC9xpaTkI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/3C3A98A4E71C11EC9128DF0BC4F9AE02.roa Signing time: Wed 21 May 2025 01:19:03 +0000 ROA not before: Wed 21 May 2025 01:19:03 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 149819 IP address blocks: 103.187.12.0/23 maxlen: 23 103.187.12.0/24 maxlen: 24 103.187.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.crl rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bgopAGEwM5uDbSj3ABgC9xpaTkI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 01:34:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 730 (0x2da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91166D1, serialNumber=6E0A29006130339B836D28F7001802F71A5A4E42 Validity Not Before: May 21 01:19:03 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682d2a07-989b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:f7:a3:ea:89:3f:cb:3b:48:2e:59:23:27:90: 91:09:5f:cc:c1:d6:81:8d:33:4a:93:c7:42:34:4e: 50:cf:80:2e:08:44:99:39:c2:84:80:8b:70:4d:c5: e3:1d:79:a8:53:36:0e:d3:51:ff:15:00:27:d6:bc: c0:4c:61:f3:5a:a5:3f:3f:06:38:86:58:19:b1:f9: 31:9b:c4:4f:33:48:0a:ea:9c:ce:66:27:d4:9f:54: 38:3b:e9:04:1f:39:15:6b:39:f9:24:b3:ca:32:09: 95:07:cb:0d:6f:f6:5f:38:81:7f:a7:13:3b:e6:87: fa:95:b4:82:66:b3:59:5a:3e:b3:ba:d9:1f:0d:59: e5:27:71:e9:a8:70:88:c7:84:38:01:b5:62:11:99: d9:10:bd:51:25:74:b3:cc:50:27:cf:4b:3c:1f:6d: 4b:27:df:06:4e:44:72:ff:65:bc:4b:0b:1c:ce:c0: d8:30:3f:01:49:c8:5c:5d:e1:71:b4:db:9a:eb:d4: 9d:ed:2e:11:d5:e5:94:2a:18:8b:2c:15:34:ad:13: 39:d4:79:e1:d6:94:bb:4c:6f:ac:54:0d:46:a8:c1: 57:ea:ae:a6:74:14:e6:04:55:f3:03:66:ec:da:1c: 7f:a5:00:3d:23:f0:69:19:4b:78:28:34:91:d2:fb: 80:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:11:81:DC:0A:06:40:88:33:98:F5:18:DF:3B:8D:B9:5F:D8:12:A7 X509v3 Authority Key Identifier: keyid:6E:0A:29:00:61:30:33:9B:83:6D:28:F7:00:18:02:F7:1A:5A:4E:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bgopAGEwM5uDbSj3ABgC9xpaTkI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/3C3A98A4E71C11EC9128DF0BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.187.12.0/23 Signature Algorithm: sha256WithRSAEncryption 01:70:05:40:1e:0f:d7:bd:85:1b:39:21:7a:b7:b1:13:ba:31: f3:06:21:af:7d:d2:ed:a1:38:ca:35:1e:cc:40:4b:50:88:5d: 7b:02:9d:ed:98:62:42:c2:06:10:55:e9:ff:2d:04:89:e9:f0: c7:a3:12:dc:d2:b5:bc:70:c1:a9:a1:15:85:c2:67:76:5e:49: 0a:27:c9:17:a9:a3:d6:e3:a7:f1:72:7d:a4:e9:a1:45:75:e1: 56:60:f8:2c:bc:d5:8b:e5:ea:6a:95:3e:c5:ae:a2:c0:69:d1: 67:8b:48:98:30:00:d2:1f:a5:52:a1:34:f2:7e:76:12:85:2c: 98:d3:fe:b9:52:74:b7:3b:b0:03:8f:d4:0a:f6:f2:26:2b:96: 8d:9f:ce:78:ea:ad:f8:e7:5b:9a:de:80:15:b5:f8:b4:8f:ae: 4b:c9:4d:66:c0:34:03:4e:7f:5d:14:e0:5d:22:5b:b9:9d:8e: 1a:b1:60:b6:58:1b:9c:4a:ba:6c:c5:b0:08:15:60:b4:10:ea: 5c:7d:ab:f3:b1:a8:d5:a3:de:a7:21:8a:ff:76:fe:cc:53:e8: 9a:0b:73:99:be:41:01:09:df:23:a0:c1:2a:98:6f:70:e4:eb: f2:79:b8:92:f4:ca:c6:02:43:86:ac:27:80:56:0c:de:96:0d: 72:ee:f4:ba -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY2RDExMTAvBgNVBAUTKDZFMEEyOTAwNjEzMDMzOUI4MzZEMjhGNzAwMTgwMkY3 MUE1QTRFNDIwHhcNMjUwNTIxMDExOTAzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJkMmEwNy05ODliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7/ej6ok/yztILlkjJ5CRCV/MwdaBjTNKk8dCNE5Qz4AuCESZOcKEgItwTcXj HXmoUzYO01H/FQAn1rzATGHzWqU/PwY4hlgZsfkxm8RPM0gK6pzOZifUn1Q4O+kE HzkVazn5JLPKMgmVB8sNb/ZfOIF/pxM75of6lbSCZrNZWj6zutkfDVnlJ3HpqHCI x4Q4AbViEZnZEL1RJXSzzFAnz0s8H21LJ98GTkRy/2W8SwsczsDYMD8BSchcXeFx tNua69Sd7S4R1eWUKhiLLBU0rRM51Hnh1pS7TG+sVA1GqMFX6q6mdBTmBFXzA2bs 2hx/pQA9I/BpGUt4KDSR0vuAeQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEwRgdwK BkCIM5j1GN87jblf2BKnMB8GA1UdIwQYMBaAFG4KKQBhMDObg20o9wAYAvcaWk5C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjZEMS9BQkRBNTE0MkU3 MTUxMUVDQjgyQ0IwNkVDNEY5QUUwMi9iZ29wQUdFd001dURiU2ozQUJnQzl4cGFU a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Jnb3BBR0V3TTV1RGJTajNBQmdDOXhwYVRrSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTY2RDEvQUJEQTUxNDJFNzE1MTFFQ0I4MkNCMDZFQzRGOUFFMDIvM0MzQTk4QTRF NzFDMTFFQzkxMjhERjBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnuwwwDQYJKoZIhvcNAQELBQADggEBAAFwBUAeD9e9hRs5 IXq3sRO6MfMGIa990u2hOMo1HsxAS1CIXXsCne2YYkLCBhBV6f8tBInp8MejEtzS tbxwwamhFYXCZ3ZeSQonyRepo9bjp/FyfaTpoUV14VZg+Cy81Yvl6mqVPsWuosBp 0WeLSJgwANIfpVKhNPJ+dhKFLJjT/rlSdLc7sAOP1Ar28iYrlo2fznjqrfjnW5re gBW1+LSPrkvJTWbANANOf10U4F0iW7mdjhqxYLZYG5xKumzFsAgVYLQQ6lx9q/Ox qNWj3qchiv92/sxT6JoLc5m+QQEJ3yOgwSqYb3Dk6/J5uJL0ysYCQ4asJ4BWDN6W DXLu9Lo= -----END CERTIFICATE-----Generated at Mon Jun 2 06:27:13 2025 by rpki-client